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DETAILED ACTION 
Remarks 

1 . In response to communications filed on 02-February-2004, claims 25, 34, and 43 are 
amended per applicant's request. Claims 25-5 1 are presently pending in the application. 

Claim Rejections - 35 USC § 103 

2. The following is a quotation of 35 U.S.C 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

3. Claims 25, 34, and 43 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Zizzi (U.S. patent No. 6,185,681) in view of Albrech et al. (International Publication No. 
97/29569). 

As to claim 25, Zizzi teaches a method for managing encryption within a database 
system, wherein encryption is performed automatically and transparently to a user of the 
database system (see abstract), the method comprising: 

receiving a request at the database system to store data in the database system (see figure 

4. step 415); 

wherein the request is directed to storing data in a portion of the database system that has 
been designated as encrypted (see figure 4 step 430, where the decision is "Yes"); 

in response to receiving the request, automatically encrypting data within the database 
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system using an encryption function to produce an encrypted data (see figure 4, step 460); and 

storing the encrypted data in the database system (see column 7, lines 15-21). 

Zizzi does not teach creating a digest of the data, and wherein the digest is used to detect 
tampering with the encrypted data. 

Albrech et al. teaches creating a digest of the data, and wherein the digest is used to 
detect tampering with the encrypted data (see abstract). 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi to include creating a digest of the data, and 
wherein the digest is used to detect tampering with the encrypted data. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi by the teachings of Albrech et al. because creating a 
digest of the data, and wherein the digest is used to detect tampering with the encrypted data 
would prevent unauthorized access (see Albrech et al., page 1, lines 24-28). 

As to claim 34, Zizzi teaches a computer-readable storage medium storing instructions 
that when executed by a computer causes the computer to perform a method for managing 
encryption within a database system, wherein encryption is performed automatically and 
transparently to a user of the database system (see abstract, where "instructions" are read on 
"software module", and it is inherent that the software most be stored on some medium), the 
method comprising: 

receiving a request at the database system to store data in the database system (see figure 
4, step 415); 
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wherein the request is directed to storing data in a portion of the database system that has 
been designated as encrypted (see figure 4, step 430, where the decision is "Yes"); 

in response to receiving the request, automatically encrypting data within the database 
system using an encryption function to produce an encrypted data (see figure 4, step 460); and 

storing the encrypted data in the database system (see column 7, lines 15-21). 

Zizzi does not teach creating a digest of the data, and wherein the digest is used to detect 
tampering with the encrypted data. 

Albrech et al teaches creating a digest of the data, and wherein the digest is used to 
detect tampering with the encrypted data (see abstract). 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi to include creating a digest of the data, and 
wherein the digest is used to detect tampering with the encrypted data. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi by the teachings of Albrech et al. because creating a 
digest of the data, and wherein the digest is used to detect tampering with the encrypted data v :,; , 
would prevent unauthorized access (see Albrech et al, page 1, lines 24-28). 

As to claim 43, Zizzi teaches an apparatus that facilitates managing encryption within a 
database system, wherein encryption is performed automatically and transparently to a user of 
the database system (see abstract), comprising: 

a receiving mechanism that is configured to receive a request at the database system to 
store data in the database system (see column 8, lines 32-41); 
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wherein the request is directed to storing data in a portion of the database system that has 
been designated as encrypted (see figure 4, step 430, where the decision is "Yes"); 

an encrypting mechanism that is configured to automatically encrypt data within the 
database system using an encryption function to produce an encrypted data (see column 9, lines 
20-31): and 

a storing mechanism that is configured to store the encrypted data in the database system 
(see column 7, lines 15-21). 

Zizzi does not teach a digest creating mechanism configured to create a digest of the data, 
and wherein the digest is used to detect tampering with the encrypted data. 

Albrech et al. teaches a digest creating mechanism configured to create a digest of the 
data, and wherein the digest is used to detect tampering with the encrypted data (see abstract). 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi to include a digest creating mechanism 
configured to create a digest of the data, and wherein the digest is used to detect tampering with 
the encrypted data. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi by the teachings of Albrech et al. because a.digest 
creating mechanism configured to create a digest of the data, and wherein the digest is used to 
detect tampering with the encrypted data would prevent unauthorized access (see Albrech et al., 
page 1, lines 24-28). 
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4. Claims 26-28, 33, 35-37, 42, -#.46, and 5 1 are rejected under 35 U.S.C. 103(a) as beingC 

A 

unpatentable over Zizzi (U.S. patent No. 6,185,681) in view of Albrech et al. (International 
Publication No. 97/29569) as applied to claims 25, 34, and 43 above, and further in view of 
Sutter (U.S. patent No. 5,924,094). 

As to claims 26, 35, and 44, Zizzi as modified, teaches 

wherein the encryption function uses a key stored in a keyfile managed by a security 
administrator (see Zizzi, column 9, lines 25-30); and 

wherein the encrypted data is stored using a storage function of the database system (see 
Zizzi , column 9, lines 32-37). 

Zizzi as modified, does not teach wherein the portion of the database system that has 
been designated as encrypted includes a column of the database system. 

Sutter teaches wherein the portion of the database system that has been designated as 
encrypted includes a column of the database system (see column 59, lines 10-16). 

Therefore 1 ; it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi as modified, to include wherein the portion 
of the database system that has been designated as encrypted includes a column of the database 
system. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi as modified, by the teachings of Sutter because 
wherein the portion of the database system that has been designated as encrypted includes a 
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column of the database system would keep unauthorized users from deciphering the encrypted 
column of the database system. 

As to claims 27, 36, and 45, Zizzi as modified, teaches further comprising: 
receiving a request to retrieve data from the column of the database system (see Zizzi , 
column 9, lines 44-59); 

if the request to retrieve data is received from a database administrator, preventing the 
database administrator from decrypting the encrypted data; if the request to retrieve data is 
received from the security administrator, preventing the security administrator from decrypting 
the encrypted data; and if the request to retrieve data is from an authorized user of the database 
system, allowing the authorized user to decrypt the encrypted data (see Zizzi , column 9, lines 40- 
43, where any user that does not have authorization to decrypt the data will not be authorized to 
decrypt it). 

As to claims 28, 37, and 46, Zizzi as modified teaches data encryption standard (DES) 
and triple DES as a mode of encryption (see Zizzi , column 3, lines 29-37). 

Zizzi as modified does not teach wherein the security administrator selects a mo.de of 
encryption for the column. 

Sutter teaches wherein the security administrator selects a mode of encryption for the 
column (see column 59, lines 1 1-14). 



Application/Control Number: 09/680,599 Page 8 

Art Unit: 2175 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi as modified, to include wherein the security 
administrator selects a mode of encryption for the column. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi as modified, by the teachings of Sutter because 
wherein the security administrator selects a mode of encryption for the column would allow the 
security manager to select various methods of encryption strengths depending on the importance 
of the file. 

As to claims 33, 42, and 51, Zizzi as modified, teaches wherein upon receiving a request 
from the security administrator specifying the column to be encrypted (see Sutter , column 60, 
lines 1-26, where "administrator" is read on "designer"), if the column currently contains data, 
the method further comprises: 

decrypting the column using an old key if the column was previously encrypted (it is 
obvious to one skilled in the art that the column would have to be decrypted before the old key 
could be discarded); and 

encrypting the column using a new key (see Sutter , column 60, lines 1-19). 



5. Claims 29, 38, and 47 rejected under 35 U.S.C. 103(a) as being unpatentable over Zizzi 
(U.S. patent No. 6,185,681 Bl) in view of Albrech et al. (International Publication No. 
97/29569), and further in view o f Sutter (U.S. patent No. 5,924,094) as applied to claims 26-28, 



Application/Control Number: 09/680,599 Page 9 

Art Unit: 2175 

33, 35-37, 42, 44-46, and 51 above, and further in view of Brogliatti et al (U.S. patent No. 
6,564,225 Bl). 

As for claims 29, 38, and 47, Zizzi as modified, does not teach wherein the security 
administrator, a database administrator, and a user administrator are distinct roles, and wherein a 
person selected for one of these roles is not allowed to be selected for another of these roles. 

Brogliatti et al. teaches wherein the security administrator, a database administrator, and 
a user administrator are distinct roles, and wherein a person selected for one of these roles is not 
allowed to be selected for another of these roles (see column 5, lines 10-24). 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi as modified, to include wherein the security 
administrator, a database administrator, and a user administrator are distinct roles, and wherein a 
person selected for one of these roles is not allowed to be selected for another of these roles. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi as modified, by the teachings of Broaliatii et al. 
because wherein the security administrator, a database administrator, and a user administrator are 
distinct roles, and wherein a person selected for one of these roles is not allowed to be selected 
for another of these roles would protect important corporate assets (see Brogliatti et al. , column 
5, lines 10-14). 



6. Claims. 30-32, 39-41 , and 48-50 rejected under 35 U.S.C. 103(a) as being unpatentable 
over Zizzi (U.S. patent No. 6,185,681 Bl) in view of Albrech et al. (International Publication 
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No. 97/29569), and further in view o f Sutter (U.S. patent No. 5,924,094) as applied to claims 26- 
28, 33, 35-37, 42, 44-46, and 51 above, and further in view of Bierrum et al. (U.S. patent No. 
5,311,595). 

As to claims 30, 39, and 48, Zizzi as modified, teaches wherein managing the keyfile 
includes, but is not limited to: 

establishing a relationship between a key identifier and he key stored in the keyfile (see 
Zizzi, column 6, lines 3-6); 

storing the keyfile in one of, 

an encrypted file in the database system, and a location separate from the database 

system (see Zizzi, column 6, lines 1-2); 

Zizzi as modified, does not teach creating the key file; establishing a plurality of keys to 
be stored in the keyfile; and moving an obfuscated copy of the keyfile to a volatile memory 
within a server associated with the database system. 

Bierrum et al. teaches creating the keyfile; establishing a plurality of keys to be stored in 
the keyfile (see column 23, lines 37-44); and moving an obfuscated copy of the keyfile to a 
volatile memory within a server associated with the database system (see column 20, line 61 
throught column 21, line 9). 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi as modified, to include creating the keyfile; 
establishing a plurality of keys to be stored in the keyfile; and moving an obfuscated copy of the 
keyfile to a volatile memory within a server associated with the database system. 
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It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi as modified, by the teachings of Bierrum et al. 
because creating the keyfile; establishing a plurality of keys to be stored in the keyfile; and 
moving an obfuscated copy of the keyfile to a volatile memory within a server associated with 
the database system would establish a tamper proof method of encrypting a file with a secure 
encryption key (see Bjerrum et al. , column 21, lines 2-9). 

As to claims 31, 40, and 49, Zizzi as modified, does not teach wherein the key identifier 
associated with the column is stored as metadata associated with a table containing the column 
within the database system. 

Sutter teaches wherein the key identifier associated with the column is stored as metadata 
associated with a table containing the column within the database system (see column 59, line 29 
through 60, line 25). 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Zizzi as modified, to include wherein the key * 
identifier associated with the column is stored as metadata associated with a table containing the 
column within the database system. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Zizzi as modified, by the teachings of Sutter because 
wherein the key identifier associated with the column is stored as metadata associated with a 
table containing the column within the database system would allow the same key to be used 
with the same key algorithm to encrypt multiple columns of the same table or multiple columns 
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in different tables (see Sutter, column 60, lines 20-24). 

As to claims 32, 41, and 50 Zizzi as modified, teaches further comprising establishing 
encryption parameters for the column (see Sutter , column 60, lines 1-10), wherein encryption 
parameters include encryption mode, key length, and integrity type (see Sutter , column 59, line 
10-15, where different types of encryption are used to verify the integrity of the file) by: 

entering encryption parameters for the column manually (see Zizzi , column 7, line 64 
through column 8, line 6); and 

recovering encryption parameters for the column from a profile table in the database 
system (see Zizzi, column 8, lines 59-67). 

Response to Arguments 

7. Applicant's arguments filed on 02-February-2004 with respect to rejected claims have 
been fully considered but they are moot in view of the new ground(s) of rejection. 

Conclusion 

8. Applicant's amendment necessitated the new ground(s) of rejection presented injthis 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
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the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

9. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jacob F. Betit whose telephone number is (703) 305-3735. The 
examiner can normally be reached on Monday through Friday 9 am to 5 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Dov Popovici can be reached on (703) 305-3830. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



jfb 

February 26, 2004 
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